How To Hack Wifi WPA And WPA2 Without Using Wordlist In Kali Linux OR Hacking Wifi Through Reaver

Hello Friends Today I Am Going to Show You How To Hack Wifi Without Using Wordlist Or You Can Call it as Hacking Wifi Password Using Reaver Method 



THIS IS FOR EDUCATIONAL PURPOSE ONLY, I AM NOT RESPONSIBLE FOR ANY ILLEGAL ACTIVITIES DONE BY VISITORS, THIS IS FOR ETHICAL PURPOSE ONLY



THIS IS FOR EDUCATIONAL PURPOSE ONLY, I AM NOT RESPONSIBLE FOR ANY ILLEGAL ACTIVITIES DONE BY VISITORS, THIS IS FOR ETHICAL PURPOSE ONLY


Requirements:

1.   Kali Linux – Operation System in Your System or In Your Flash Disk (USB Pendrive)
2.   4GB or Above Pendrive
3.   Kali Live Boot
4.   Wifi networks nearby with Excellent Signal to make hacking faster




Limitations:

1)    Can hack only WPS Enabled Routers

2)    Cannot hack WPS Turned ON Routers 







  What is WPS: : 

                   WPS Means Wifi Protected System, This Is a Different Type of security system which is enabled for some routers, it is the best method to hack wifi , But it does have Limitations, they are some routers with WPS enabled are secured by another security called “AP RATE LIMITING” if you see this just leave that network and go to another network.

   1) Till now no one found any method to break that security system, may be in my later posts I will try to post how to break that security system

   2) Wpa And Wpa2 Networks can only be hacked using wordlist, Which uses Brute Force Attack in which probability of getting password is only 35%

    3) But In Reaver Method Probability is 100% (Only If AP Rate Limiting  Is Not Available)

    4) So it is better to go for reaver method if wps is available
    
    5) It consumes less time than Brute Force Attack Or Dictionary Attack
   
    6) If the network that you want to hack has an excellent signal and if your system is in good condition, then the hack completes in  5 – 18 Hours.





How To Hack Wifi WPA/WPA2 - WPS Enabled Netork without Using Wordlist


Step 1: Open Terminal and type "ifconfig"  (Optional)


Step 2:  Here I will be selecting wlan0 as my interface

             And the Next Command Is  “airmon-ng start wlan0”





Step 3: Now you can see the available supplicants and the interfaces 


.
Step 4:  There are two options from here on, you can either kill the supplicants or move on with the other command. 

1)   By Using Kill Command and Stopping the Wlan0 Supplicants

    2)   By Using the Command "airodump-ng mon0" instead of kill and the next  
                                
                                command is  "airodump-ng wlan0"


 Here i used "Kill" Command to kill the supplicants, you can follow any of these   methods


Step 5: Now Type The Following Command "airodump-ng wlan0"

For Kali Linux 2016 and later on versions,  type "airodump-ng wlan0mon"




Step 6: Here you can see all the available wifi networks 


Step 7:  Press "CTRL + C" to stop the search



Step 8: Type "wash -i wlan0mon" 

if that doesn't work type "wash -i mon0"

Wash is a tool used to search for all the wps enabled networks around you. 


Step 9:  Here are the wps enabled networks available around me :p. 

Note:  Reaver can hack networks for which WPS is enabled and not locked, which can be seen below. In the WPS Locked Column. If it says


 "Yes" - reaver can not hack such networks 
  "NO" -- Reaver can hack those networks 



Step 10: Press "CTRL + C" to stop the search and select a network that you want to hack



 Step 11: Copy the "BSSID" of the network





Step 12: Now time to hack the network using Reaver :p 


"Reaver -i mon0 -b bssid -vv"


Here bssid = the mac address or the bssid  that you copied earlier
          mon0= Interface (you can either use wlan0 or mon0 or wlan0mon in Kali 2016 or higher)


Step 13: Now reaver starts its program and the Hacking Starts, you need to wait till it completes it's hack(100%)





Reaver takes at least 6-18 hours to hack the network password, so please be patient and let it do its work. WPS pin contains 99999999 combinations, so it might take a while to crack it. 

After reaching 100% you can see the password of that network, as it takes a lot of time I am not able to show you the password of that network. But can guarantee you that this is the best and easiest way to hack wifi wpa and wpa2 password

Reaver can hack routers which are manufactured before 2012, later on manufactured discovered the flaw and modified in such a way that, when someone try to brute force wps pin, it automatically locks the wps system which is a disadvantage to reaver.


This is the AP RATE LIMITING SECURITY SYSTEM (WPS lock ON)

If you face this Error, most likely you should stop using this reaver attack and go for Evil Twin Method, which can Hack any router but with user's Interference.  

The Reason for getting this Error is WPS Protection is turned "ON" on the victim's Router. We cannot hack WPS locked router's using Reaver, you need to use evil twin attack to hack WPS locked networks, that's the only method as of now. 
  



If you get an error of AP Rate Limiting then try using the following commands, for very few router's this command will work

So, if you face any kind of issue check for the error and type "reaver --help"

and if its like the problem with nack

type the command
 "reaver -bssid routermac --channel number -i mon0 -A -vvv --no-nacks"


“reaver –i mon0 –b bssid –d 30 –vv –dh-small”


AP rate limiting cannot be cracked using reaver attack, nowadays almost all the routers come with WPS lock turned on so this might not work on all the routers.

                                                    Never Give Up

How to Secure Yourself from Reaver Attack:


If You don’t want to be a victim of Rever Attack, replace your very old routers with new one or simply disable WPS from your Router’s control panel.





==========     Hacking Don't Need Agreements     ==========
Just Remember One Thing You Don't Need To Seek Anyone's  To Hack Anything Or Anyone As Long As It Is Ethical, This Is The Main Principle Of Hacking Dream
    Thank You for Reading My Post, I Hope It Will Be Useful For You

I Will Be Very Happy To Help You So For Queries or Any Problem Comment Below Or You Can Mail Me At Bhanu@HackingDream.net
Bhanu Namikaze

Bhanu Namikaze is an Ethical Hacker, Security Analyst, Blogger, Web Developer and a Mechanical Engineer. He Enjoys writing articles, Blogging, Debugging Errors and Capture the Flags. Enjoy Learning; There is Nothing Like Absolute Defeat - Try and try until you Succeed.

4 comments:

  1. by this method i can hack all wifi of wpa wpa2 protocols ans me plzzzz

    ReplyDelete
  2. Nicely Illustrated and defined. Thanks man next time again in AP limitation

    ReplyDelete
  3. hi am clif, i recently got a .cap file from a wifi network WPA2 but each time i try to crack it using the 'sqlmap.txt' dictionary in kali, my computer just over heats and shutdown after only about 8733 keys have been tested. this is my email samaclif15@gmail.com

    ReplyDelete
  4. when i type the command “reaver –i mon0 –b bssid -vv” it says Input/Output error where am i wrong?

    ReplyDelete